Breaking News

ShinyHunters claims 2 Million Crunchbase records; company confirms breach

AndyC 27 January 2026

ShinyHunters claims 2 Million Crunchbase records; company confirms breach Pierluigi Paganini January 26, 2026 Crunchbase confirms a data breach after...

Energy sector targeted in multi-stage phishing and BEC campaign using SharePoint

AndyC 27 January 2026

Energy sector targeted in multi-stage phishing and BEC campaign using SharePoint Pierluigi Paganini January 26, 2026 Microsoft warns of a...

Why AI assistants still face barriers at scale

Russia-linked Sandworm APT implicated in major cyber attack on Poland’s power grid

AndyC 27 January 2026

Russia-linked Sandworm APT implicated in major cyber attack on Poland’s power grid Pierluigi Paganini January 26, 2026 Russia-linked APT Sandworm...

Nike is investigating a possible data breach, after WorldLeaks claims

AndyC 26 January 2026

Nike is investigating a possible data breach, after WorldLeaks claims Pierluigi Paganini January 25, 2026 Nike is investigating a possible...

Cybersecurity’s New Business Case: Fraud

SECURITY AFFAIRS MALWARE NEWSLETTER ROUND 81

AndyC 26 January 2026

This website uses cookies to improve your experience while you navigate through the website. Out of these cookies, the cookies...

Osiris ransomware emerges, leveraging BYOVD technique to kill security tools

AndyC 25 January 2026

Osiris ransomware emerges, leveraging BYOVD technique to kill security tools Pierluigi Paganini January 24, 2026 Researchers identified a new Osiris...

U.S. CISA adds a flaw in Broadcom VMware vCenter Server to its Known Exploited Vulnerabilities catalog

AndyC 25 January 2026

U.S. CISA adds a flaw in Broadcom VMware vCenter Server to its Known Exploited Vulnerabilities catalog Pierluigi Paganini January 24,...

11-Year-Old critical telnetd flaw found in GNU InetUtils (CVE-2026-24061)

AndyC 24 January 2026

11-Year-Old critical telnetd flaw found in GNU InetUtils (CVE-2026-24061) Pierluigi Paganini January 24, 2026 Critical telnetd flaw CVE-2026-24061 (CVSS 9.8)...

Security Blogs

Fortinet warns of active FortiCloud SSO bypass affecting updated devices

AndyC 24 January 2026

Fortinet warns of active FortiCloud SSO bypass affecting updated devices Pierluigi Paganini January 23, 2026 Fortinet confirmed attacks are bypassing...

U.S. CISA adds Prettier eslint-config-prettier, Vite Vitejs, Versa Concerto SD-WAN orchestration platform, and Synacor Zimbra Collaboration Suite flaws to its Known Exploited Vulnerabilities catalog

AndyC 24 January 2026

U.S. CISA adds Prettier eslint-config-prettier, Vite Vitejs, Versa Concerto SD-WAN orchestration platform, and Synacor Zimbra Collaboration Suite flaws to its Known...

Investigation underway after 72M Under Armour records surface online

AndyC 24 January 2026

Investigation underway after 72M Under Armour records surface online Pierluigi Paganini January 23, 2026 Under Armour is investigating a data...

Critical SmarterMail vulnerability under attack, no CVE yet

AndyC 23 January 2026

Critical SmarterMail vulnerability under attack, no CVE yet Pierluigi Paganini January 22, 2026 A SmarterMail flaw (WT-2026-0001) is under active...

Security Blogs

Arctic Wolf detects surge in automated Fortinet FortiGate firewall configuration attacks

AndyC 23 January 2026

Arctic Wolf detects surge in automated Fortinet FortiGate firewall configuration attacks Pierluigi Paganini January 22, 2026 Arctic Wolf warned of...

Cisco fixed actively exploited Unified Communications zero day

AndyC 22 January 2026

Cisco fixed actively exploited Unified Communications zero day Pierluigi Paganini January 21, 2026 Cisco patched a critical zero-day RCE flaw...

Security Blogs

Zoom fixed critical Node Multimedia Routers flaw

AndyC 22 January 2026

Zoom fixed critical Node Multimedia Routers flaw Pierluigi Paganini January 21, 2026 Zoom addressed a critical security vulnerability, tracked as...

Breaking News

ShinyHunters claims 2 Million Crunchbase records; company confirms breach

Energy sector targeted in multi-stage phishing and BEC campaign using SharePoint

Russia-linked Sandworm APT implicated in major cyber attack on Poland’s power grid

Nike is investigating a possible data breach, after WorldLeaks claims

Osiris ransomware emerges, leveraging BYOVD technique to kill security tools

U.S. CISA adds a flaw in Broadcom VMware vCenter Server to its Known Exploited Vulnerabilities catalog

11-Year-Old critical telnetd flaw found in GNU InetUtils (CVE-2026-24061)

Fortinet warns of active FortiCloud SSO bypass affecting updated devices

U.S. CISA adds Prettier eslint-config-prettier, Vite Vitejs, Versa Concerto SD-WAN orchestration platform, and Synacor Zimbra Collaboration Suite flaws to its Known Exploited Vulnerabilities catalog

Investigation underway after 72M Under Armour records surface online

Critical SmarterMail vulnerability under attack, no CVE yet

Arctic Wolf detects surge in automated Fortinet FortiGate firewall configuration attacks

Cisco fixed actively exploited Unified Communications zero day

Zoom fixed critical Node Multimedia Routers flaw

This month in security with Tony Anscombe – January 2026 edition

DynoWiper update: Technical analysis and attribution

Love? Actually: Fake dating app used as lure in targeted spyware campaign in Pakistan

Drowning in spam or scam emails? Here’s probably why

ESET Research: Sandworm behind cyberattack on Poland’s power grid in late 2025

Children and chatbots: What parents should know

Donate Bitcoin to this address

Donate Ethereum to this address

DOJ releases details alleged talented hacker working for Jeffrey Epstein

AI-powered penetration testing: Definition, Tools and Process

Why is disaster recovery vital with NHI

Cyberattacks Disrupt Communications at Wind, Solar, and Heat Facilities in Poland

FBI takes notorious RAMP ransomware forum offline

Donate Bitcoin to this address

Donate Ethereum to this address

You may have missed